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ABSTRACT 

Cyber security is a practice to protect internet-based systems including software, hardware, and data 
such as networks, computers, mobile devices, electronics systems, and data from illegal attacks or 
cyber threats. One of the most focused and sensitive areas in today's world is cybersecurity. The main 
objective of this study is to emphasize the several cyber security attacks and threats under one umbrella. 
The goal of this work is to examine the literature review on cyber security approaches, datasets, threats, 
attacks, research trends, challenges, performance metrics, and software used to promote further 
research in this field. Based on a comprehensive review SWOT analysis is also performed on cyber 
security. The presented review paper aid researchers in both academia and industry in making 
advancements in their work in relevant application fields. 

Keywords— Cyber security constraints, Computer privacy, Information security, Intrusion 
detection, Artificial intelligence, IoT 


1. Introduction 


Numerous factors have caused an increase in interest in expanding the potential use of cyber security: 
(i) The rise of cyber dangers, (ii) Growing dependency on technology (ili) Regulation and compliance 
requirements (iv) Education and training initiatives: (v) Employment opportunities. The "cyber" 
problem has evolved over 50 years. Long before the public and many senior executives realized its 
value in the mid-1990s, it existed. The conclusions of those earlier discussions thus influenced the 
official responses to the emergence of the cyber crisis in the late 1990s [1]. The practices employed to 
protect a user's online environment are referred to as cyber security. The user, devices, networks, apps, 
all software, and other elements are all included in this ecosystem. The objective is to minimize the 
risk of cyberattacks. However, information security states the preservation of data with importance on 
its availability, truthfulness, and privacy aspects [3, 4]. The fact that information security is a continual 
process rather than a one-time occurrence is the most crucial fact about it. There are various methods 
for reducing internet security risks and stopping online assaults. Cyberattacks are becoming more 
prevalent as internet activities and mobile applications grow in popularity [2]. Recent trends in cyber 
security are presented in Fig. 1. and Fig. 2 represents the Al-based cyber security work as per Google 
Scholar statistics. 


The following is the review paper's main contributions: 
1. This paper provides a relevant discussion of cybersecurity, and cyber trespass, as well as its 
applications and necessity. 


@2023, IJETMS | Impact Factor Value: 5.672 | Page 186 


International Journal of Engineering Technology and Management Sciences 
Website: ijetms.in Issue: 6 Volume No.7 November - December — 2023 
DOI: 10.46647/ijetms.2023.v07i06.029 ISSN: 2581-4621 


2. In addition, a review of various cybersecurity approaches is provided, along with a comprehensive 
discussion of various cybersecurity datasets, threats, and attacks. 

3. The review paper substantially describes present research and issues in cyber security. As well as 
potential future paths in the field of cybersecurity that could aid researchers in both academia and 
industry in making advancements in their work in relevant application fields. 

4. Froma literature review, a SWOT analysis is performed on cyber security broadly considering the 
various aspects. 


Attacks against 
cloud services 


Increase in 
cyber warfare 


Explosion of 
BYOD 


» De 


Fig. 1 Some major trends in cyber security. Fig. 2 AI-based cyber security work 
as per Google Scholar statistics. 


2. Related work 

The explicit and contented literature review is presented in this paper with some of the recently released 
works. Cybersecurity's future will be difficult as compared to the present in that it will become hard to 
define and possibly endless, as digital skills converge with other technologies. There are humans in 
almost every element of laws, society, the family, and the outside world. The foundation of this work 
[3] was the idea that the "cyber" and "security" professions as a concept of "cybersecurity" would 
coexist in a rapidly changing context in the second period of 2010. Even though the way it was used 
varies greatly depending on the situation, that action was more likely to quicken than slow. So, that 
cannot be the part of research task instead it served as the core of the investigation. Cybersecurity will 
be probably regarded as a "master challenge" in the age of the internet eventually. Considering this, it 
would appear first on any list of difficulties that civilizations encounter and technology companies 
must deal with the work [5,6]. Organizations had difficulties in 2022 concerning cybersecurity [8]. 
Ransomware became a common hazard for most enterprises as attackers targeted numerous 
government entities. Cybersecurity solutions now frequently use Machine Learning (ML), a subset of 
AI, to quickly analyze massive data sets in search of normal and abnormal data as well as to quickly 
and effectively categorize suspicious data [7, 9]. 
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The robotics sector is adopting ROS 2, requiring security for robots and ROS computational graphs. 
This paper provides SROS2, library sets, and developer tools for integrating safety in ROS 2 graphs, 
adhering to DevSecOps model, and demonstrating graph protection using TurtleBot3 [10]. The author 
discusses that cyber-physical systems security modeling is not effectively applied due to weak design 
aspects, lack of overlap between security and safety, and the potential for mishaps [11]. 

This work investigates the Bluetooth system in an automobile display system, identifying threats to 
privacy restrictions, grading attacks, and suggesting defenses. The study uses the Android Open-Source 
Project to discover vulnerabilities in a real vehicle [12]. 

The author of this study used DNNs (Deep neural networks) to foresee Network Intrusion Detection 
System attacks (N-IDS). The network has been trained and benchmarked using the KDDCup-'99 
dataset. Upon comparing the findings, it was seen that a deep neural network (DNN) consisting of three 
layers outperformed all other standard machine learning (ML) techniques [13]. 

The author introduces active fuzzing, an automated method for detecting packet-level CPS network 

intrusions. It uses online active learning to update models, and the technique is tested on a water 
purification facility to determine its effectiveness [14]. 
To provide flexible control of network traffic, software-defined networking (SDN), a unique network 
paradigm, splits the control plane and data plane into independent pieces of network equipment. It is 
strong programmability and global perspective open up a lot of new possibilities. DDOS detection in 
the context of SDN (Software-Defined Networking) was a significant and difficult research field focus 
to provide flexible control of network traffic. As a result, the author presented FORT, a straightforward 
DDoS detection system that distributed the rule-based detection algorithm at edge switches and 
determines when to activate it by routinely gathering the port condition data. Representative tests 
showed that FORT can significantly decrease controller load while delivering accurate detection. The 
following were the results of the survey. Additionally, by including an alarm mechanism, this design 
can, under normal circumstances, lower the load on the southbound channel by more than 60% [15]. 


3. Approach 

Nations now face new security challenges as a result of the internet. Aside from administrations, 
extremist groups, and even people, cyberspace is home to both strong and weak actors as well as due 
to its low entrance barrier, anonymity, significant influence, and lack of public transparency, 
cyberspace poses hazards such as cyberwarfare, cybercrime, cyberterrorism, and cyber espionage. Fig. 
3 depicts the anatomy of a cyber-attack and its strategy. It is clear that the hacker first starts with the 
target identification which means to whom device or organization where it wants to attack to gain 
access. Then, data collection by researching and gaining information in this context and finally 
performing the cyber-attack. All this can be stopped at any stage if the companies and particular user 
is aware of the cyber-attack and know how to protect from it. 

Cyberattacks can cause severe physical or financial harm, such as virus attacks, stock market 
crashes, power plant failures, and air traffic control system disruptions. Organizations use 
cybersecurity to avoid unauthorized access to databases and systems, and various attacks, contribute 
to these security issues [16, 17]. 


3.1 Dataset used in cyber security 

The significance of cybersecurity is discussed in the above sections of this review paper. It is shown 
that to address these cyber-security vulnerabilities, unique machine-learning challenges must be 
overcome. It can provide new datasets that accurately explain the difficulties, allowing the 
academicians to explore the issues and make recommendations for solutions such as solving the 
common problem of labels being missing in the cybersecurity dataset. Further, the numerous datasets 
utilized in cyber security research are shown in Fig. 4 [18]. 
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Fig. 3 Anatomy of a cyber-attack and Fig. 4 Various datasets used in cyber security research. 
its approach [5]. 


4 Threats 

Cyber security threats include illicit internet activity, critical infrastructure security, and insecure 
computer systems. Crimes like malware, viruses, and denial-of-service assaults target computer 
networks or services, while fraud, identity theft, phishing schemes, and cyberstalking target non- 
network or device targets. Various kind of threats are shown in Fig 5. 

Cybercrime is the most common type of cyberattack, involving the use of the internet to steal data 
or resources without user consent. It involves unauthorized access through malicious scripts, such as 
identity theft, DNS cache poisoning, hacking, piracy, and plagiarism. Cyber vandalism [18] involves 
destroying or exploiting data by interrupting or terminating network services, causing authorized users 
to be unable to access the network's data. Web jacking involves unauthorized access to a website, while 
card information theft involves hacking into an eCommerce server and stealing credit or debit card 
information. Child pornography involves using computer networks to exploit minors, while spam 
covers unauthorized transmission of pornographic or illegal product promotions. Cyber trespass 
involves gaining access to network resources without making changes, while logic bombs operate on 
events and can be turned on at specific times. Drive-by downloads allow attackers to install harmful 
software on a victim's computer, allowing them to steal passwords and other sensitive information. 
Cyber terrorism involves intentional attacks on individuals or organizations using the internet, while 
cyber-attack by risk involves putting someone in dread for their life or family members. Script kiddies 
are individuals who breach networks and computer systems, obtain root access, and vandalize websites 
using scripts or programs. 


5 Attacks 

The various attacks are depicted in Fig. 6. As technology develops, so do cyber security threats, also 
referred to as "cyber-attacks," which put users of those systems at risk for a security breach. It can be 
hard to identify and defend from cyber threats and attacks [19]. Untargeted attacks target individuals 
or services randomly, while targeted attacks target specific users. Phishing involves sending emails to 
users asking for sensitive information, while water holing allows access to legitimate websites. 
Ransomware is used for extortion, and scanning attacks randomly attack the internet. Targeted attacks 
target specific users, such as spear-phishing and DDOS attacks. Social engineering attacks involve 
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background studies, offering rewards in exchange for breaching security by disclosing private 
information or granting access to crucial resources. 
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Fig. 5 Various types of threats [17]. Fig. 6 Classification of attacks [17]. 


6 Research Trends and challenges 

A Visualization for Cyber Security research community (VizSec) reports enduring issues for cyber 
security by familiarizing and examining information visualization approaches for usage in the cyber 
security arena. Even though this research effort resulted in a large number of tools and approaches that 
may be utilized to enhance cyber security, the community has failed to set uniform standards for 
evaluating these methods to verify their practical validity [20, 21]. The smart grid may be a very 
appealing target for attackers as a vital infrastructure because internet-based protocols and open-source 
software are used for controlling and monitoring [22]. The emergence of Smart Grid Cyber-Physical 
Systems (CPS) is occurring alongside the maturation and integration of Information and 
Communication Technologies (ICT) within traditional energy systems. Smart grid systems, which are 
powered by the Internet of Things (IoT), are considered to be critical infrastructures that possess 
complex architectures and essential components. These communication technologies possess the 
potential to cause loss of life, disruption of peace, substantial economic damage, or a combination 
thereof, if their confidentiality, integrity, or availability is compromised. Extracting patterns or insights 
linked to security incidents from cybersecurity information and creating the right data-driven models 
is significant to automating and intelligently building security systems [23-24]. Finding insights from 
data can be made possible by the use of ML. A new scientific paradigm is being guided by ML and 
data science can drastically alter the state of cybersecurity. 

The primary objective of cybersecurity data science involves utilising data-driven methodologies 
to facilitate intelligent decision-making processes based on security data, hence enabling the 
development of intelligent solutions for cybersecurity. Partially substituting well-known, conventional 
security measures like firewalls, user authentication, access control, encryption systems, etc. in light 
of the goals of the modern cyber organization. Security aims to protect assets from the many threats 
that result from specific inherent flaws. The underlying technology is the asset that needs to be 
safeguarded in terms of information and communication security [23]. Cyber security's current 
progress with some growing fields and attacks is shown in Fig.7. 

“The only truly secure system is switched off and unplugged, locked in a titanium safe, buried in a 
concrete bunker, and surrounded by nerve gas and very highly paid armed guards. Even then, I would 
not stake my life on it.” ~ Professor Gene Spafford 
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Knowing about diverse cyber threats and taking precautions to safeguard the Confidential, Integrity, 
and Accessibility (or CIA trinity) of the digital world are both components of cybersecurity. If 
businesses wish to advance successfully and avoid suffering losses at the hands of hackers and other 
unpleasant destructive attackers, they must defend their assets and ensure that their staff is always 
prepared to respond to a cyber-attack [25]. 


Exploit 


Ransomware Phishing 


Fig. 7 Information security recent research trends with some growing domains and attacks. 


7 SWOT analysis 

In this review paper cyber security SWOT analysis is performed as shown in Fig. 9 that comprises 
strengths, weaknesses, opportunities, and threats. However, there are pros and cons for all technology 
[8] such as Phishing attacks are now a day become more prominent in various organizations by bad 
attackers [26-27] and various security risks. 


1996 2023 


Fig. 8 The number of publications in cyber security. 


Conclusion 

Considering recently published research, the review makes an effort to assess the enormous threat that 
cybercrime poses to our daily life. The study highlights the importance of network attacks and 
cybercrime with their causes and effects. In the future, cyber-attack probability will increase in 
frequency as 5G, AI, and similar technologies advance such as self-driving automobiles, augmented 
and virtual reality, smart medical monitoring, etc. Fig. 8 shows the Semantic Scholar search engine 
with cyber security research publications and is clear from the figure that this field is growing at a very 
fast speed. We believe that this research paper will support the researchers to find the literature and 
open issues in cyber security. 
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Fig. 9 SWOT analysis of cyber security. 
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